CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Qnap: >> Qts >> 4.3.3 Security Vulnerabilities

CVE-2017-13067

QNAP has patched a remote code execution vulnerability affecting the QTS Media Library in all versions prior to QTS 4.2.6 build 20170905 and QTS 4.3.3.0299 build 20170901. This particular vulnerability allows a remote attacker to execute commands on a QNAP NAS using a transcoding service on port 9251. A remote user does not require any privileges to successfully execute an attack.

CVSS Score

9.8

EPSS Score

0.511

Published

2017-09-14

Page 9

Vulnerabilities

Vulnerable Software

Qnap: >> Qts >> 4.3.3 Security Vulnerabilities

Products

Pricing

Contact Us